CSPwn
Select a sample Content Security Policy or paste your own below
XHR Exfiltration
Image Tag Exfiltration
Embed Tag Exfiltration
Iframe Exfiltration
Audio Tag Exfiltration
Stylesheet Import Exfiltration
Prefetch Exfiltration
Font Import Exfiltration
Self-Submitting Form Exfiltration
Self-Clicking Link Exfiltration
Script Tag Exfiltration
XHR Exfiltration
Image Tag Exfiltration
Embed Tag Exfiltration
Iframe Exfiltration
Audio Tag Exfiltration
Stylesheet Import Exfiltration
Prefetch Exfiltration
Font Import Exfiltration
Self-Submitting Form Exfiltration
Self-Clicking Link Exfiltration
XHR Exfiltration
Image Tag Exfiltration
Embed Tag Exfiltration
Iframe Exfiltration
Audio Tag Exfiltration
Stylesheet Import Exfiltration
Prefetch Exfiltration
Font Import Exfiltration
Self-Submitting Form Exfiltration
Self-Clicking Link Exfiltration
Content Security Policy:
Content-Security-Policy:
XSS Type (Select One)
Reflected
Stored
Payload Type (Select One)
Alert Box
Exfiltrate Cookie
Exfiltrate JavaScript localStorage
Exfiltrate JavaScript sessionStorage
Custom Exfiltration URL
PWN!
Please supply a Content Security Policy, pick a payload type, and press PWN! to begin.
